Level up your Java code and explore what Spring can do for you.

The Spring Blog is a resource for developers working with the Spring Framework, providing insights, tutorials, and best practices for building enterprise Java applications. Covering a wide range of topics, including Spring Boot, Spring MVC, and Spring Data, the blog offers practical guidance on application architecture, dependency injection, and integration with other frameworks. Developers can learn how to leverage the power of Spring to create scalable, maintainable, and robust Java applications that meet the demands of modern software development.

Spring

Spring Security's BCryptPasswordEncoder has a vulnerability identified as CVE-2025-22228, where it does not enforce maximum password length. This could potentially result in security risks for applications using this encoder for password encryption.

CVE-2025-22228: Spring Security BCryptPasswordEncoder does not enforce maximum password length